An organization wants to host an externally accessible web server that will not contain sensitive user information. Any sensitive information will be hosted on file servers. Which of the following is the BEST architecture configuration for this organization?

(A). Host the web server in a DMZ and the file servers behind a firewall

(B). Host the web server and the file servers in a DMZ

(C). Host the web server behind a firewall and the file servers in a DMZ

(D). Host both the web server and file servers behind a firewall

An organization has decided to host its web application and database in the cloud. Which of the following BEST describes the security concerns for this decision?

(B). The cloud vendor is a new attack vector within the supply chain

(A). Access to the organization's servers could be exposed to other cloud-provider clients

(C). Outsourcing the code development adds risk to the cloud provider

(D). Vendor support will cease when the hosting platforms reach EOL.

Which of the following BEST explains the difference between a data owner and a data custodian?

(B). The data owner is responsible for determining how the data may be used, while the data custodian is responsible for implementing the protection to the data

(A). The data owner is responsible for adhering to the rules for using the data, while the data custodian is responsible for determining the corporate governance regarding the data

(C). The data owner is responsible for controlling the data, while the data custodian is responsible for maintaining the chain of custody when handling the data

(D). The data owner grants the technical permissions for data access, while the data custodian maintains the database access controls to the data

A website developer who is concerned about theft cf the company's user database warns to protect weak passwords from offline brute-force attacks. Which of the following be the BEST solution?

(A). Lock accounts after five failed logons

(B). Precompute passwords with rainbow tables

(C). Use a key-stretching technique

(D). Hash passwords with the MD5 algorithm

A company labeled some documents with the public sensitivity classification. This means the documents can be accessed by?

(A). employees of other companies press

(B). all members of the department that created the documents

(C). only the company's employees and those listed in the document

(D). only the individuals listed in the documents

A company recently experienced an attack in which a malicious actor was able to exfiltrate data by cracking stolen passwords, using a rainbow table the sensitive data. Which of the following should a security engineer do to prevent such an attack in the future?

(B). Enforce password complexity.

(C). Implement password salting.

Which of the following is the correct order of volatility from MOST to LEAST volatile?

(B). Cache, memory, temporary filesystems, disk, archival media

(A). Memory, temporary filesystems, routing tables, disk, network storage

(C). Memory, disk, temporary filesystems, cache, archival media

(D). Cache, disk, temporary filesystems, network storage, archival media

Some laptops recently went missing from a locked storage area that is protected by keyless RFID-enabled locks. There is no obvious damage to the physical space. The security manager identifies who unlocked the door, however, human resources confirms the employee was on vacation at the time of the incident. Which of the following describes what MOST likely occurred?

(A). The employee's physical access card was cloned.

(B). The employee is colluding with human resources

(C). The employee's biometrics were harvested

(D). A criminal used lock picking tools to open the door.

An organization routes all of its traffic through a VPN Most users are remote and connect into a corporate datacenter that houses confidential information There is a firewall at the Internet border followed by a DIP appliance, the VPN server and the datacenter itself. Which of the following is the WEAKEST design element?

(C). Encrypted VPN traffic will not be inspected when entering or leaving the network

(A). The DLP appliance should be integrated into a NGFW.

(B). Split-tunnel connections can negatively impact the DLP appliance's performance

(D). Adding two hops in the VPN tunnel may slow down remote connections

A retail company that is launching a new website to showcase the company's product line and other information for online shoppers registered the following URLs: * www.companysite.com * shop.companysite.com * about-us.companysite.com * contact-us.companysite.com * secure-logon.companysite.com Which of the following should the company use to secure its website if the company is concerned with convenience and cost?

(C). A code-signing certificate

(E). An extended validation certificate

After a phishing scam for a user's credentials, the red team was able to craft a payload to deploy on a server. The attack allowed the installation of malicious software that initiates a new remote session. Which of the following types of attacks has occurred?

(C). Application programming interface

A Chief Security Officer (CSO) is concerned about the amount of PII that is stored locally on each salesperson's laptop. The sales department has a higher-than-average rate of lost equipment. Which of the following recommendations would BEST address the CSO's concern?

(C). Replace all hard drives with SEDs.

(D). Install DLP agents on each laptop.

311-350

Authored by Bilal Karaaslan

Computers, English

Professional Development

Used 52+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

40 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A new security engineer has started hardening systems. One of the hardening techniques the engineer is using involves disabling remote logins to the NAS. Users are now reporting the inability to use SCP to transfer files to the NAS, even though the data is still viewable from the users PCs. Which of the following is the MOST likely cause of this issue?

(A). TFTP was disabled on the local hosts

(B). SSH was turned off instead of modifying the configuration file

(C). Remote login was disabled in the networkd.config instead of using the sshd.conf

(D). Network services are no longer running on the NAS

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A small business just recovered from a ransomware attack against its file servers by
purchasing the decryption keys from the attackers. The issue was triggered by a phishing email and
the IT administrator wants to ensure it does not happen again. Which of the following should the IT
administrator do FIRST after recovery?

(A). Scan the NAS for residual or dormant malware and take new daily backups that are tested on a

frequent basis

(B). Restrict administrative privileges and patch ail systems and applications.

(C). Rebuild all workstations and install new antivirus software

(D). Implement application whitelisting and perform user application hardening

MULTIPLE SELECT QUESTION

1 min • 1 pt

An analyst is trying to identify insecure services that are running on the internal network. After performing a port scan the analyst identifies that a server has some insecure services enabled on default ports. Which of the following BEST describes the services that are currently running and the secure alternatives for replacing them' (Select THREE)

(A). SFTP FTPS

(B). SNMPv2 SNMPv3

(C). HTTP, HTTPS

(D). TFTP FTP

(F). Telnet SSH

MULTIPLE SELECT QUESTION

1 min • 1 pt

A user enters a password to log in to a workstation and is then prompted to enter an authentication code. Which of the following MFA factors or attributes are being utilized in the authentication process? (Select TWO).

(A). Something you know

(B). Something you have

(C). Somewhere you are

(D). Someone you are

(E). Something you are

MULTIPLE CHOICE QUESTION

1 min • 1 pt

As part of the lessons-learned phase, the SOC is tasked with building methods to detect if a previous incident is happening again. Which of the following would allow the security analyst to alert the SOC if an event is reoccurring?

(A). Creating a playbook within the SOAR

(B). Implementing rules in the NGFW

(C). Updating the DLP hash database

(D). Publishing a new CRL with revoked certificates

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A security engineer is installing a WAF to protect the company's website from malicious web requests over SSL. Which of the following is needed to meet the objective?

(A). A reverse proxy

(B). A decryption certificate

(C). A split-tunnel VPN

(D). Load-balanced serv

MULTIPLE CHOICE QUESTION

1 min • 1 pt

A security analyst needs to generate a server certificate to be used for 802.1X and secure RDP connections. The analyst is unsure what is required to perform the task and solicits help from a senior colleague. Which of the following is the FIRST step the senior colleague will most likely tell the analyst to perform to accomplish this task?

(A). Create an OCSP

(B). Generate a CSR

(C). Create a CRL

(D). Generate a .pfx file

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

39 questions

GENERAL REVIEW

Quiz

•

Professional Development

36 questions

A1_7 & 8 Revise and Check

Quiz

•

Professional Development

45 questions

Level 7 Final Test

Quiz

•

Professional Development

35 questions

BRPI U05

Quiz

•

Professional Development

36 questions

CHƯƠNG 4 THÔNG ĐIỆP LỚN CHO NGƯỜI TRẺ

Quiz

•

Professional Development

40 questions

Resume and Giving Information

Quiz

•

Professional Development

40 questions

21 st Century Literacy Skills

Quiz

•

Professional Development

38 questions

Informática Básica: Introdução

Quiz

•

Professional Development

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Computers

10 questions

How to Email your Teacher

Quiz

•

Professional Development

6 questions

3RD GRADE DECLARATION OF INDEPENDENCE EXIT TICKET

Quiz

•

Professional Development

19 questions

Black History Month Trivia

Quiz

•

6th Grade - Professio...

22 questions

Multiplying Exponents with the Same Base

Quiz

•

9th Grade - Professio...

40 questions

Flags of the World

Quiz

•

KG - Professional Dev...

311-350

A user enters a password to log in to a workstation and is then prompted to enter an authentication code. Which of the following MFA factors or attributes are being utilized in the authentication process? (Select TWO).

As part of the lessons-learned phase, the SOC is tasked with building methods to detect if a previous incident is happening again. Which of the following would allow the security analyst to alert the SOC if an event is reoccurring?

A security engineer is installing a WAF to protect the company's website from malicious web requests over SSL. Which of the following is needed to meet the objective?

An organization wants to host an externally accessible web server that will not contain sensitive user information. Any sensitive information will be hosted on file servers. Which of the following is the BEST architecture configuration for this organization?

Which of the following should be monitored by threat intelligence researchers who search for leaked credentials?

A customer service representative reported an unusual text message that was sent to the help desk. The message contained an unrecognized invoice number with a large balance due and a link to click for more details. Which of the following BEST describes this technique?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers